Summary
Requesting the URI /.perf gives information about
the currently running Netscape/iPlanet web server.
Solution
If you don't use this feature, server monitoring should be disabled in the magnus.conf file or web server admin.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
- Apache Tomcat HTTP NIO Denial Of Service Vulnerability (Windows)
- IBM WebSphere Application Server WS-Security XML Encryption Weakness Vulnerability
- IBM WebSphere Application Server (WAS) Multiple Vulnerabilities 02 - March 2011
- GoAhead Webserver Multiple Stored Cross Site Scripting Vulnerabilities